botmap

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt shows curl examples that embed an "apiKey" and other identifiers directly in request payloads/commands and tells the bot to save/load credentials, which would require the agent to include secret values verbatim in generated output (high exfiltration risk).

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md instructs the agent to call https://botmap.ai/api/surroundings which returns recentChat, nearbyPlayers, and other live, user-generated world data that the agent is expected to read and act on (e.g., choose moves or responses), so untrusted third-party messages could materially influence behavior.